$ rpki-client -vvf rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft File: US3AbkHAiZokofyIXrNG5FMH80c.mft (raw, json) Hash identifier: 3Zv93wfuKo/KF9j5Cz2JZ9qThUoCcNTrk1k5h9NzT68= Subject key identifier: 81:F8:2A:EB:D6:9D:F1:03:60:32:0F:36:CA:AE:15:6B:98:D3:AF:46 Authority key identifier: 51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 Certificate issuer: /CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Certificate serial: 089B Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft Manifest number: 0896 Signing time: Fri 31 May 2024 22:19:21 +0000 Manifest this update: Fri 31 May 2024 22:19:20 +0000 Manifest next update: Fri 07 Jun 2024 22:19:20 +0000 Files and hashes: 1: US3AbkHAiZokofyIXrNG5FMH80c.crl (hash: Ygp/b8FIzoxDx8MHLhxgyUkp64bX0KAclL5y0MrzD30=) 2: 9EEA3006979411EA8C6FC25AC4F9AE02.roa (hash: d6SxXVS1lQJvsIAW+IUDOIk4BqrA5vmSuci8klQHiNY=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 07 Jun 2024 22:19:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2203 (0x89b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BA4F2/serialNumber=512DC06E41C0899A24A1FC885EB346E45307F347 Validity Not Before: May 31 22:19:20 2024 GMT Not After : Jun 7 22:19:20 2024 GMT Subject: CN=665a4ce9-5e18 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:c3:d4:b3:cb:13:5f:f3:54:56:17:ad:78:cb: 46:13:83:34:b9:c2:09:32:9b:84:79:07:8b:56:d9: 03:17:70:94:44:7f:c3:de:72:ec:e2:1f:23:bf:38: ba:6d:4f:86:c9:1f:8d:d2:fd:a8:2e:f9:7b:f4:27: b9:fb:33:a3:3d:b3:9e:15:10:7b:11:94:94:3b:4c: fb:c9:96:15:d8:3f:30:e7:61:66:67:a6:85:54:2e: 30:a0:97:f8:81:ca:3a:01:68:33:11:cc:fa:b8:bd: f1:41:bc:91:93:ba:6d:32:6d:e5:88:77:7e:65:15: dc:e8:2b:57:59:66:e8:61:e9:f2:4b:52:f2:c8:2a: 9f:4e:79:a5:9d:ae:4a:ba:0a:0c:e9:a2:a3:89:66: 6c:45:d2:fe:65:ae:a8:fc:f3:86:a4:9a:d4:b9:07: 9d:7f:a9:4f:1b:f7:60:0d:f4:f1:e0:8b:61:e9:f5: 8f:bb:b7:ee:78:95:06:3b:a6:a1:43:45:15:2e:0d: 1d:8a:43:01:4c:62:12:8f:ee:6c:aa:76:b8:f8:e8: b6:8b:d6:df:25:1e:78:81:1e:c4:47:07:77:de:16: b4:c3:ca:69:45:5e:a7:5b:41:ba:1b:97:04:39:6b: 74:c7:d7:5a:09:5f:25:8d:03:95:ae:4c:f7:fa:8c: 6f:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:F8:2A:EB:D6:9D:F1:03:60:32:0F:36:CA:AE:15:6B:98:D3:AF:46 X509v3 Authority Key Identifier: keyid:51:2D:C0:6E:41:C0:89:9A:24:A1:FC:88:5E:B3:46:E4:53:07:F3:47 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/US3AbkHAiZokofyIXrNG5FMH80c.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91BA4F2/2AEDEF9A979311EAB2AD2956C4F9AE02/US3AbkHAiZokofyIXrNG5FMH80c.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 30:f4:92:cf:31:d7:24:35:60:0b:03:3a:7f:7b:f0:c7:9d:29: 38:67:27:88:b4:82:79:e4:c6:96:7c:18:74:09:2c:11:f9:bb: 4c:34:e0:b5:47:bd:d8:5a:ef:d0:24:f8:4c:4b:83:95:29:08: ec:68:be:d3:f7:aa:77:34:a5:c0:7b:82:70:57:a9:43:85:1a: e5:96:eb:07:fd:d1:06:c4:30:7a:6f:3e:1f:ee:14:a1:f2:a9: 5c:49:1e:ca:6b:73:57:bd:85:39:59:81:01:df:b8:80:16:6d: f3:ab:f7:a5:fc:b8:9e:62:c2:11:47:07:9a:2f:08:61:cc:0d: b7:91:85:b8:45:92:9c:e6:45:24:1c:93:ee:20:f3:6a:ab:bd: 7d:e0:ff:eb:52:ac:05:3b:5f:68:5b:30:0e:21:20:ca:32:73: 75:ba:87:6e:dd:46:5a:3e:ab:97:16:e1:d7:47:6c:ae:5e:c4: 86:ef:4c:77:b5:e6:a2:77:44:f1:b7:4e:1b:a6:a4:07:bb:89: 71:b8:c8:5e:94:c8:82:93:71:c9:98:8a:f8:a7:68:27:0a:8c: 9d:fb:c2:a8:9e:30:b8:cb:47:88:30:21:49:5a:1b:8e:e5:a1: d4:20:5a:7a:06:16:fe:4e:ca:29:81:07:6a:e7:3b:73:2b:31: 5c:8d:52:73 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICCJswDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QkE0RjIxMTAvBgNVBAUTKDUxMkRDMDZFNDFDMDg5OUEyNEExRkM4ODVFQjM0NkU0 NTMwN0YzNDcwHhcNMjQwNTMxMjIxOTIwWhcNMjQwNjA3MjIxOTIwWjAYMRYwFAYD VQQDEw02NjVhNGNlOS01ZTE4MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAoMPUs8sTX/NUVheteMtGE4M0ucIJMpuEeQeLVtkDF3CURH/D3nLs4h8jvzi6 bU+GyR+N0v2oLvl79Ce5+zOjPbOeFRB7EZSUO0z7yZYV2D8w52FmZ6aFVC4woJf4 gco6AWgzEcz6uL3xQbyRk7ptMm3liHd+ZRXc6CtXWWboYenyS1LyyCqfTnmlna5K ugoM6aKjiWZsRdL+Za6o/POGpJrUuQedf6lPG/dgDfTx4Ith6fWPu7fueJUGO6ah Q0UVLg0dikMBTGISj+5sqna4+Oi2i9bfJR54gR7ERwd33ha0w8ppRV6nW0G6G5cE OWt0x9daCV8ljQOVrkz3+oxvIwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFIH4KuvW nfEDYDIPNsquFWuY069GMB8GA1UdIwQYMBaAFFEtwG5BwImaJKH8iF6zRuRTB/NH MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCQTRGMi8yQUVERUY5QTk3 OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWlab2tvZnlJWHJORzVGTUg4 MGMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL1VTM0Fia0hBaVpva29meUlYck5HNUZNSDgwYy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFC QTRGMi8yQUVERUY5QTk3OTMxMUVBQjJBRDI5NTZDNEY5QUUwMi9VUzNBYmtIQWla b2tvZnlJWHJORzVGTUg4MGMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAw9JLPMdckNWALAzp/e/DHnSk4ZyeItIJ55MaWfBh0CSwR+btMNOC1 R73YWu/QJPhMS4OVKQjsaL7T96p3NKXAe4JwV6lDhRrllusH/dEGxDB6bz4f7hSh 8qlcSR7Ka3NXvYU5WYEB37iAFm3zq/el/LieYsIRRweaLwhhzA23kYW4RZKc5kUk HJPuIPNqq7194P/rUqwFO19oWzAOISDKMnN1uodu3UZaPquXFuHXR2yuXsSG70x3 teaid0Txt04bpqQHu4lxuMhelMiCk3HJmIr4p2gnCoyd+8KonjC4y0eIMCFJWhuO 5aHUIFp6Bhb+TsopgQdq5ztzKzFcjVJz -----END CERTIFICATE-----Generated at Sat Jun 1 00:13:27 2024 by rpki-client on console-ams.rpki-client.org